仅需一次训练即可进行隐私审计

May, 2023

Privacy Auditing with One (1) Training Run

Thomas Steinke, Milad Nasr, Matthew Jagielski

TL;DR本研究提出了一种方案，用于单次训练运行的差分隐私机器学习系统的审计，利用了可以独立添加或删除多个训练样例的并行性，该审计方案利用差分隐私和统计泛化之间的联系进行分析，避免了群体隐私成本，而且对算法需求的假设极少，可在黑盒或白盒设置中应用。

Abstract

We propose a scheme for auditing differentially private machine learning systems with a single training run. This exploits the parallelism of being able to add or remove multiple training examples independently.